-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 03/15/2017 03:10 PM, darrin.tho...@123mail.org wrote: > I removed the overlap, moving the WiFi LAN into its own segment > > net (ISP-assigned IP = XX.XX.XX.XX) | | | ( eth 0 ) router | |- ( > eth1, static IP addr: 10.0.0.1/24 ) --> wired LAN | |- ( wlan1, > static IP addr: 10.0.1.1/24 ) --> wifi LAN > > Now, when I connect/login, I *do* get a 10.0.1.150 address assigned > to the phone > > AND, > > I can ping from the phone, @ IP = 10.0.1.150 to > > wlan1 @ IP = 10.0.1.1 eth1 @ IP = 10.0.0.1 any machine @ IP on the > WiFi LAN any machine @ IP on the wireless LAN > > I can NOT ping (100% loss) to eth0, @ my ISP-assigned IP > (xx.xx.xx.xx), or beyond to the net. > > So, apparently, even though both the INTIF and WIFIIF are in the > same zone, 'lan', that's not yet enough. > > Fwiw, according to netstat, my routes are > > netstat -nr Kernel IP routing table Destination Gateway > Genmask Flags MSS Window irtt Iface 0.0.0.0 > XX.XX.XX.1 0.0.0.0 UG 0 0 0 eth0 > XX.XX.XX.0 0.0.0.0 255.255.252.0 U 0 0 > 0 eth0 XX.XX.XX.1 0.0.0.0 255.255.255.255 UH 0 > 0 0 eth0 10.0.0.0 0.0.0.0 255.255.255.0 U > 0 0 0 eth1 10.0.1.0 0.0.0.0 255.255.255.0 > U 0 0 0 wlan1 >
What default gateway are you assigning to the phone? - -Tom - -- Tom Eastep \ Q: What do you get when you cross a mobster with Shoreline, \ an international standard? Washington, USA \ A: Someone who makes you an offer you can't http://shorewall.net \________________________________________________ -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 Comment: GPGTools - http://gpgtools.org iQIcBAEBCAAGBQJYyb8NAAoJEJbms/JCOk0QQ1wP/2XljEnYgu1Yd6RNt/xq6NhN ZAVjlkrJQnRGmCrgvoLxcY7xxT/8zFzakFCrPQZTGW6FQDHcVO+VDbbQAar40MlJ ggh0Udw70mYBxgo8WLl8OTT3SxpJoZbeRcL/72KC73c8zKX9wgtQJDKydLRzLAJV evg0EcYdujy4s6t6imI6/Lp8qWK78MTVCacTVfwDRh8sb29Rk0OkfOmmuoZUZntI C9jkjV2QMr77agjLdBYvorw/xVqJnS1Jer7ScymYwKAXA2H7/2LrXsoFv5mIrxtC /3JvOhiecjIg7InajcUDkESunQRMKG9s9v3rzCfNdqG1UORIxerZjQx5wqAuM1Im 1aVfUTsbE2peB8lolMblVqvinENqxI7+FQ6C0AoI8McMu+vtqhPVlyJLIFrgIjyz KgPnx5YX/mokVwbf33LrWxTkeA50AYhMtW4VgK6aGxEdwfLMvoMUeYo87lzP+rEw EUFFm63ATar/pdy5ov+HOeWRnyv5MLVAz4RYIGyp4ikfHGeZv6SwL9C1EU5B2TJ0 VnqskBuFN5djRFU2C4abg98ptBdk1bOe8VS4AgxvtyhXBu9lcTQ8MCMF6VY9mD/3 4vlYngPe9Rd/jWlGfKNkNspwdlZRQM6ireqX5cX/91oyOdxYohapyIRSkEQ06bnl 9ZlTXCooLF5vlYarj+aG =ZJ64 -----END PGP SIGNATURE----- ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
